- Access Tokens
- Refresh Tokens
- ID Tokens
- Proof-of-Possession (PoP) Tokens
- PKCE (RFC 7636)
- Client Management
- Authorization Requests
- User Authentication
- Error Handling
- Client Authentication
- Userinfo Endpoint
Generating encrypted ID token
This article explains an example on how to configure Authlete to generate encrypted ID tokens for a particular client.
Prepare a JWK set to be used for encrypting ID tokens, and register it. See the following article for instructions.
Choose encryption algorithm of ID token for the client. See Client Settings - JWK Set for details.
In this example, the following settings in accordance with the registered public key are specified:
- ID Token Encryption Algorithm: ECDH_ES
- ID Token Encryption Encoding Algorithm: A128CBC_HS256
With the settings above, Authlete will be encrypting ID tokens for the client.
How did we do with this article?